ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.
IPS detection [SID: 30429] Audit: SMB Bruteforce Attempt is generating a large number of notifications
Article ID: 172839
Updated On:
Products
Endpoint Protection
Issue/Introduction
IPS detection [SID: 30429] Audit: SMB Bruteforce Attempt is generating a large number of notifications. The default configuration for this audit signature is Allow and not log. While the action is being allowed it is being logged.
[SID: 30429] Audit: SMB Bruteforce Attempt attack detected but not blocked.
Resolution
This issue was fixed in (CIDS) Intrusion Prevention Engine 17.1.0.222 and newer. This was fully released through content updates as of May 21st, 2019.
Feedback
Yes
No
Powered by
